Multiple vulnerabilities in Traefik
| Risk | Medium |
| Patch available | YES |
| Number of vulnerabilities | 3 |
| CVE-ID | CVE-2023-47633 CVE-2023-47106 CVE-2023-47124 |
| CWE-ID | CWE-400 CWE-285 CWE-413 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software |
Traefik Server applications / Other server solutions |
| Vendor | Containous |
Security Bulletin
This security bulletin contains information about 3 vulnerabilities.
1) Resource exhaustion
EUVDB-ID: #VU83639
Risk: Medium
CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2023-47633
CWE-ID:
CWE-400 - Resource exhaustion
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to application does not properly control consumption of internal resources when processing traffic for Docker containers. A remote attacker can trigger resource exhaustion and perform a denial of service (DoS) attack.
MitigationInstall updates from vendor's website.
Vulnerable software versionsTraefik: 2.0.0 - 2.10.5
CPE2.3- cpe:2.3:a:containous:traefik:2.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:containous:traefik:2.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:containous:traefik:2.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:containous:traefik:2.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:containous:traefik:2.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:containous:traefik:2.0.5:*:*:*:*:*:*:*
- cpe:2.3:a:containous:traefik:2.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:containous:traefik:2.0.7:*:*:*:*:*:*:*
- cpe:2.3:a:containous:traefik:2.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:containous:traefik:2.1.1:*:*:*:*:*:*:*
https://github.com/traefik/traefik/security/advisories/GHSA-6fwg-jrfw-ff7p
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Improper Authorization
EUVDB-ID: #VU83638
Risk: Medium
CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2023-47106
CWE-ID:
CWE-285 - Improper Authorization
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to bypass authorization.
The vulnerability exists due to the way Traefik handles requests with URL fragments. A remote attacker can use a specially crafted URL to bypass URI-based access control restrictions, when combined with another frontend proxy like Nginx.
MitigationInstall updates from vendor's website.
Vulnerable software versionsTraefik: 2.0.0 - 2.10.5
CPE2.3- cpe:2.3:a:containous:traefik:2.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:containous:traefik:2.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:containous:traefik:2.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:containous:traefik:2.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:containous:traefik:2.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:containous:traefik:2.0.5:*:*:*:*:*:*:*
- cpe:2.3:a:containous:traefik:2.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:containous:traefik:2.0.7:*:*:*:*:*:*:*
- cpe:2.3:a:containous:traefik:2.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:containous:traefik:2.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:containous:traefik:2.1.2:*:*:*:*:*:*:*
https://github.com/traefik/traefik/security/advisories/GHSA-fvhj-4qfh-q2hm
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
3) Improper Resource Locking
EUVDB-ID: #VU83636
Risk: Medium
CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2023-47124
CWE-ID:
CWE-413 - Improper Resource Locking
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service attack.
The
vulnerability exists due to the way the application handles ACME HTTP challenge. If Traefik is configured to use the HTTPChallenge to generate and renew the Let's Encrypt TLS certificates, the delay authorized to solve the challenge of 50 seconds can be exploited by perform a slowloris attack.
Install updates from vendor's website.
Vulnerable software versionsTraefik: 2.0.0 - 2.10.5
CPE2.3- cpe:2.3:a:containous:traefik:2.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:containous:traefik:2.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:containous:traefik:2.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:containous:traefik:2.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:containous:traefik:2.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:containous:traefik:2.0.5:*:*:*:*:*:*:*
- cpe:2.3:a:containous:traefik:2.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:containous:traefik:2.0.7:*:*:*:*:*:*:*
- cpe:2.3:a:containous:traefik:2.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:containous:traefik:2.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:containous:traefik:2.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:containous:traefik:2.1.3:*:*:*:*:*:*:*
https://github.com/traefik/traefik/security/advisories/GHSA-8g85-whqh-cr2f
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
